Vulnerability Report

CVE-1999-1041

Title: CVE-1999-1041

Memory Corruption

Proof Of Concept

PoC Available for CVE-1999-1041

CWE Category NVD-CWE-noinfo

Published Date Aug 27, 1998

Modified Date Apr 16, 2026

Exploit Status Available

Score 7.2 CVSS v2.0

Exploit Probability (EPSS)

1.03%

Vulnerability Summary

CVE-1999-1041: Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root access via (1) a long TERM environmental variable and (2) a long entry in the .mscreenrc file.

Impacted Vendors

sco 2

unix 1

caldera 1

Reference Links

ftp://ftp.sco.com/SSE/security_bulletins/SB-98.05a http://marc.info/?l=bugtraq&m=90686250717719&w=2 http://www.cert.org/vendor_bulletins/VB-98.10.sco.mscreen http://www.securityfocus.com/archive/1/10420 ftp://ftp.sco.com/SSE/security_bulletins/SB-98.05a http://marc.info/?l=bugtraq&m=90686250717719&w=2 http://www.cert.org/vendor_bulletins/VB-98.10.sco.mscreen http://www.securityfocus.com/archive/1/10420

CVSS v2.0

Source Entity [email protected]

Severity HIGH

7.2

Access Vector

N/A

Authentication

N/A

RAW VECTOR AV:L/AC:L/Au:N/C:C/I:C/A:C

Associated Attack Patterns (CAPEC)

Total: Patterns

CVE-1999-1041 Exploits & PoCs (Proof Of Concept)

Exploit-DB https://www.exploit-db.com/exploits/261

View Code

April 16, 2026 MODIFIED

Vulnerability data updated via NVD.

April 03, 2025 MODIFIED

Vulnerability data updated via NVD.

Attack Vector Matrix

Access Vector N/A

Complexity N/A

Privileges N/A

Interaction NONE

CVSS Vector String


                                    AV:L/AC:L/Au:N/C:C/I:C/A:C

Affected Stack

No specific products linked.